Hi all, Following some additional analysis of the situation I've now adjusted the policy surrounding enforced use of 2FA.
Going forward it will only be enforced on people who are one of the following: - KDE Developers - KDE e.V. Members (including the Board) - KDE e.V. Staff (whether they be contractors or employees) In addition, 2FA may be enforced on any person who has access to a system that contains sensitive information, including but not limited to stats.kde.org, metrics.kde.org and collaborate.kde.org, or who has additional privileges on those systems outside of those granted to users by default. It may also be enforced if a person becomes involved in a project in a meaningful way (ie. a long term contributor) that does not result in them obtaining a developer account or access to sensitive information. Cheers, Ben
